This NXLog add-on can retrieve information about various user, admin, system, and policy actions and events from Microsoft Azure and Office 365. Once configured, the add-on prints Syslog events, each with a JSON payload, to standard output for processing by NXLog.
The Salesforce add-on provides support for fetching Event Log Files from Salesforce with NXLog. The script collects Event Log Files from a Salesforce instance by periodically running SOQL queries via the REST API.
The nxlog-xchg add-on can be used to retrieve administrator audit logs and mailbox audit logs. These logs include actions taken by users or administrators who make changes in the organization.
The Box add-on can be used to pull events from Box using their REST API. Events will be passed to NXLog in Syslog format with the JSON event in the message field.
The Okta add-on can be used to pull events from Okta using their REST API. Events will be passed to NXLog in Syslog format with the JSON event in the message field.
The NXLog Amazon S3 add-on can receive events and send events to Amazon S3 cloud storage. The NXLog Python modules for input and output are used for this, as well as Boto3, the AWS SDK for Python.
This NXLog add-on can exchange log data with the Google Logging API using gRPC and protocol buffers. The input part of the add-on retrieves logs, and the output component pushes them to the Logging API files.
The eStreamer add-on can be used with NXLog to collect events from a Cisco FireSIGHT System. The Cisco Event Streamer (eStreamer) API is used for communication between NXLog and the FireSIGHT System.
The Cisco IPS add-on supports collection of alerts from an IPS-enabled device. The Security Device Event Exchange (SDEE) API is used for communication between NXLog and the IPS.
NXLog User Guide.
Though most of the content applies to all versions of NXLog Community Edition and NXLog Enterprise Edition, this guide was written specifically for NXLog Enterprise Edition.
NXLog CE also comes with it's own Reference manual to help you set up and successfully run the product.HTML PDF